Chapter 65
Configuring Dynamic Access Policies
When you enter attribute value pairs and click the "Test" button, the DAP subsystem on the device
references these values when evaluating the AAA and endpoint selection attributes for each record. The
results display in the "Test Results" text area.
Fields
•
Selection Criteria—Determine the AAA and endpoint attributes to test for dynamic access policy
retrieval.
•
AAA Attributes
–
–
–
Endpoint Attributes—Identifies the endpoint attribute.
•
–
–
–
Test Result—Displays the result of the test.
•
Test—Click to test the retrieval of the policies you have set.
•
Close—Click to close the pane.
•
Modes
The following table shows the modes in which this feature is available:
Firewall Mode
Routed
•
OL-20339-01
AAA Attribute—Identifies the AAA attribute.
Operation Value—Identifies the attribute as =/!= to the given value.
Add/Edit—Click to add or edit a AAA attribute.
Endpoint ID—Provides the endpoint attribute ID.
Name/Operation/Value—
Add/Edit/Delete—Click to add, edit or delete and endpoint attribute.
Security Context
Transparent Single
•
•
Multiple
Context
System
—
—
Cisco ASA 5500 Series Configuration Guide using ASDM
Understanding VPN Access Policies
65-9